crypto: use correct derived key size when timing pbkdf

Currently when timing the pbkdf algorithm a fixed key size of 32 bytes is used. This results in inaccurate timings for certain hashes depending on their digest size. For example when using sha1 with aes-256, this causes us to measure time for the master key digest doing 2 sha1 operations per iteration, instead of 1. Instead we should pass in the desired key size to the timing routine that matches the key size that will be used for real later. Reviewed-by: Eric Blake <eblake@redhat.com> Signed-off-by: Daniel P. Berrange <berrange@redhat.com>
2025-08-05 16:53:55 -06:00 · 2016-09-07 12:43:29 +01:00 · 2016-09-07 12:43:29 +01:00 · e74aabcffb
commit e74aabcffb
parent 8813800b7d
4 changed files with 15 additions and 4 deletions
--- a/crypto/block-luks.c
+++ b/crypto/block-luks.c
@ -1072,6 +1072,7 @@ qcrypto_block_luks_create(QCryptoBlock *block,
                                       masterkey, luks->header.key_bytes,
                                       luks->header.master_key_salt,
                                       QCRYPTO_BLOCK_LUKS_SALT_LEN,
+                                       QCRYPTO_BLOCK_LUKS_DIGEST_LEN,
                                       &local_err);
    if (local_err) {
        error_propagate(errp, local_err);
@ -1152,6 +1153,7 @@ qcrypto_block_luks_create(QCryptoBlock *block,
                                       (uint8_t *)password, strlen(password),
                                       luks->header.key_slots[0].salt,
                                       QCRYPTO_BLOCK_LUKS_SALT_LEN,
+                                       luks->header.key_bytes,
                                       &local_err);
    if (local_err) {
        error_propagate(errp, local_err);